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IN THE CLAIMS 



Please amend the claims as follows. 



1 . (Currently Amended) A method comprising: 

receiving at a mobile client from a mobil e station a subscriber identit y sent from a 
mobile station comprising a subscriber identity module, the subscriber identity 
corresponding to a subscriber of a mobile telecommunication network, wherein the 
mobile telecommunication network is separate from a communication system to which 
the mobile client is to be authenticated , and wherein the mobile station is separate from 
the mobile client ; 

sending the subscriber identity from the mobile client to an authentication block 
of the mobile telecommunication network; 

receiving at the mobile client from the authentication block at least one challenge 
and at least one first secret based on a subscriber's secret specific to the subscriber 
identity; 

sending from the mobile client the at least one challenge to a subscriber identity 
module; 

receiving at the mobile client at least one second secret in response to the at least 
one challenge; and 

using the second secret for authenticating the mobile client to the communication 
system separate from the mobile telecommunication network . 

2. (Previously Presented) The method according to claim 1 further comprising: 

receiving a personal identification number from a user; and 
transmitting wirelessly the personal identification number to the mobile 

station. 



3. (Previously Presented) The method according to claim 2 further comprising: 

encrypting the personal identification number before transmitting the 
personal identification number. 
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4. (Currently Amended) The method according to claim 1 wherein using the second secret 
further comprises: 

encrypting the second secret to provide [[a]] an encrypted second secret; 

and 

transmitting the encrypted second secret to the communication system. 

5. (Previously Presented) The method according to claim 4 wherein using the second secret 
further comprises: 

refreshing the encrypted second secret. 

6. (Currently Amended) The method according to claim 1 wherein sending the subscriber 
identity to [[an]] the authentication block comprises sending wirelessly the subscriber 
identity to the authentication block; and 

wherein receiving from the authentication block comprises receiving wirelessly 
from the authentication block. 

7. (Currently Amended) The method according to claim 1 wherein: 

receiving from [[a]]_the mobile station [[a]]_the subscriber identity comprises 
receiving wirelessly from [[a]]_the mobile station [[a]]_the subscriber identity; 

sending the at least one challenge comprises sending wirelessly the at least one 
challenge; and 

receiving at least one second secret comprises receiving wirelessly at least one 
second secret. 

8. (Previously Presented) The method according to claim 7 further comprising: 

receiving a personal identification number from a user; and 

transmitting wirelessly the personal identification number to the mobile station. 

9. (Previously Presented) The method according to claim 8 wherein transmitting wirelessly 
comprises transmitting an infrared signal. 
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1 0. (Previously Presented) The method according to claim 8 wherein transmitting wirelessly 
comprises transmitting a radio signal. 

1 1 . (Previously Presented) The method according to claim 8 wherein transmitting wirelessly 
comprises transmitting a low power radio signal. 

12. (Previously Presented) The method according to claim 8 wherein transmitting wirelessly 
comprises transmitting an acoustic signal. 

13. (Currently Amended) An apparatus, comprising: 

a means for receiving at a mobile client from a mobil e station a subscriber identity 
sent from a mobile station comprising a subscriber identity module, the subscriber 
identity corresponding to a subscriber of a mobile telecommunication network, wherein 
the mobile telecommunication network is separate from a communication system to 
which the mobile client is to be authenticated , and wherein the mobile station is separate 
from the mobile client ; 

a means for sending the subscriber identity to an authentication block of the 
mobile telecommunication network; 

a means for receiving at the mobile client from the authentication block at least 
one challenge and at least one first secret based on a subscriber's secret specific to the 
subscriber identity; 

a means for sending from the mobile client the at least one challenge to a 
subscriber identity module; and 

a means for receiving at the mobile client at least one second secret in response to 
the at least one challenge wherein the second secret is arranged to be used for 
authenticating the mobile client to the communication system separate from the mobile 
telecommunication network . 

14. (Previously Presented) The apparatus according to claim 13 further comprising: 

a means for receiving a personal identification number from a user; and 
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a means for transmitting wirelessly the personal identification number to the 
mobile station. 

15-24. (CANCELED) 

25. (Currently Amended) A method comprising: 

retrieving from a subscriber identity module in a mobile station a subscriber 
identity corresponding to a subscriber of a mobile telecommunication network; 

sending wirelessly the subscriber identity from the mobile station to a mobile 
client for authenticating the mobile client to a communication system separate from the 
mobile telecommunication network ; 

receiving wirelessly at the mobile station from the mobile client at least one 
challenge based on a subscriber's secret specific to the subscriber identity; 

generating at the mobile station at least one secret in response to the at least one 
challenge; and 

sending from the mobile station wirelessly to the mobile client the at least one 

secret. 

26. (Previously Presented) The method of claim 25 wherein the method further comprises 
wirelessly receiving a request. 

27. (Previously Presented) The method of claim 26 wherein the request contains a personal 
identification number. 

28. (Currently Amended) The method of claims 26 wherein the request contains an 
encrypted personal identification number. 

29. (Previously Presented) The method of claim 27 further comprising confirming that the 
personal identification number matches a identity module personal identification number. 

30. (Currently Amended) An apparatus, comprising: 
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means for retrieving from a subscriber identity module a subscriber identity 
corresponding to a subscriber of a mobile telecommunication network; 

means for sending wirelessly the subscriber identity to a mobile client for 
authenticating the mobile client to a communication system separate from the mobile 
telecommunication network ; 

means for receiving wirelessly from the mobile client at least one challenge based 
on a subscriber's secret specific to the subscriber identity; 

means for generating at least one secret in response to the at least one challenge 

and 

means for sending wirelessly the at least one secret. 

3 1 . (Previously Presented) The apparatus of claim 30, further comprising a means for 
wirelessly receiving a request. 

32-34. (CANCELED) 

35. (Currently Amended) A computer program product embodied in a computer readable 
medium for controlling a client in order to authenticate the client to a communication system by 
using a subscriber identity module of a mobile telecommunications network, wherein the mobile 
telecommunications network is separate from the communications system to which the client is 
to be authenticated; the computer program product comprising: 

computer executable program code to enable the client to wirelessly retrieve from a 
subscriber identity module of a mobile station a subscriber identity corresponding to a subscriber 
of a mobile telecommunications network; 

computer executable program code to enable the client to wirelessly send the subscriber 
identity to an authentication block of the mobile telecommunications network; 

computer executable program code to enable the client to wirelessly receive from the 
authentication block of the network at least one challenge and at least one first secret based on a 
subscriber's secret specific to the subscriber identity; 

computer executable program code to enable the client to wirelessly send the at least one 
challenge to the subscriber identity module; 
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computer executable program code to enable the client to wirelessly receive from the 
mobile station at least one second secret in response to the at least one challenge; and 

computer executable program code to enable the client to use the second secret for 
authenticating the client to the communication system separate from the mobile 
telecommunication network, wherein the subscriber identity module is accessed over a local 
wireless link between the mobile station and the client when wirelessly retrieving the subscriber 
identity from the mobile station. 

36. (CANCELED) 

37. (Currently Amended) A computer program product embodied in a computer readable 
medium for controlling a device for authenticating a client to a communications system using a 
subscriber identity module of a mobile telecommunications network, wherein the 
communications system is separate from the mobile telecommunications network, the computer 
program product comprising: 

computer executable program code to enable the device to retrieve from a subscriber 
identity module a subscriber identity corresponding to a subscriber of a mobile 
telecommunications network; 

computer executable program code to enable the device to send the subscriber identity to 
a client over a local wireless link for authenticating the client to the communications system 
separate from the mobile telecommunications network ; 

computer executable program code to enable the device to receive over the local wireless 
link from the client at least one challenge based on a subscriber's secret specific to the subscriber 
identity; 

computer executable program code to enable the device to provide the at least one 
challenge to the subscriber identity module and receiving at least one authentication secret in 
response to the challenge; and 

computer executable program code to enable the device to send the at least one 
authentication secret over the local wireless link to the client for use by the client in said 
authenticating the client to the communications system. 
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38. (Currently Amended) An apparatus, comprising: 

a first module for receiving at a mobile client from a mobil e station a subscriber 
identity sent from a mobile station comprising a subscriber identity module, the 
subscriber identity corresponding to a subscriber of a mobile telecommunication network, 
wherein the mobile telecommunication network is separate from a communication system 
to which the mobile client is to be authenticated , and wherein the mobile station is 
separate from the mobile client ; 

a second module for sending the subscriber identity to an authentication block of 
the mobile telecommunication network; 

a third module for receiving at the mobile client from the authentication block at 
least one challenge and at least one first secret based on a subscriber's secret specific to 
the subscriber identity; 

a fourth module for sending from the mobile client the at least one challenge to a 
subscriber identity module; and 

a fifth module for receiving at the mobile client at least one second secret in 
response to the at least one challenge, wherein the second secret is arranged to be used 
for authenticating the mobile client to the communication system separate from the 
mobile telecommunication network . 

39. (Previously Presented) The apparatus according to claim 38, further comprising: 

a user interface for receiving a personal identification number from a user; and 
a transmitter for transmitting wirelessly the personal identification number to the 
mobile station. 

40. (Previously Presented) The apparatus according to claim 39, further comprising: 

a encrypter for encrypting the personal identification number before transmitting 
the personal identification number. 

41 . (Previously Presented) The apparatus according to claim 38 wherein the fifth module v 
further comprises: 
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an encrypter for encrypting the second secret to provide a encrypted second 
secret; and 

a transmitter for transmitting the encrypted second secret to the communication 

system. 

42. (Previously Presented) The apparatus according to claim 38 wherein the fifth module is 
configured to refresh the encrypted second secret. 

43. (Previously Presented) The apparatus according to claim 38, further comprising a 
transmitter for sending wirelessly the subscriber identity to the authentication block; and 

a receiver for receiving wirelessly from the authentication block. 

44. (Currently Amended) The apparatus according to claim 38, further comprising a receiver 
for receiving wirelessly from [[a]] Jhe mobile station [[a]] the subscriber identity; and 

a transmitter for sending wirelessly the at least one challenge; 

wherein the receiver is configured to receive wirelessly at least one second secret. 

45. (Previously Presented) The apparatus according to claim 44, further comprising: 

a user interface for receiving a personal identification number from a user; and 
wherein the transmitter is configured to transmit wirelessly the personal 
identification number to the mobile station. 

46. (Previously Presented) The apparatus according to claim 44, wherein the transmitter is 
configured to transmit an infrared signal. 

47. (Previously Presented) The apparatus according to claim 44, wherein the transmitter is 
configured to transmit a radio signal. 

48. (Previously Presented) The apparatus according to claim 44, wherein the transmitter is 
configured to transmit a low power radio signal. 
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49. (Previously Presented) The apparatus according to claim 44, wherein the transmitter is 
configured to transmit an acoustic signal. 

50. (Currently Amended) An apparatus, comprising: 

a first module for retrieving from a subscriber identity module a subscriber 
identity corresponding to a subscriber of a mobile telecommunication network; 

a second module for sending wirelessly the subscriber identity to a mobile client 
for authenticating the client to a communication system separate from the mobile 
telecommunication network ; 

a third module for receiving wirelessly from the mobile client at least one 
challenge based on a subscriber's secret specific to the subscriber identity; 

a fourth module for generating at least one secret in response to the at least one 
challenge; and 

a fifth module for sending wirelessly the at least one secret. 

5 1 . (Previously Presented) The apparatus of claim 50, further comprising a receiver for 
wirelessly receiving a request. 

52. (Previously Presented) The apparatus of claim 51 wherein the request contains a personal 
identification number. 

53. (Currently Amended) The apparatus of claim-53 - 5 1 wherein the request contains an 
encrypted personal identification number. 

54. (Previously Presented) The apparatus of claim 52, further comprising a comparator for 
confirming that the personal identification number matches a identity module personal 
identification number. 

55. (New) The method of claim 1 , further comprising sending the subscriber identity from 
the mobile client to the authentication block via the communication system. 
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(New) The apparatus of claim 38, wherein the second module is configured to send the 
subscriber identity from the mobile client to the authentication block via the 
communication system. 



